[4914] in bugtraq
Re: Book on web security
daemon@ATHENA.MIT.EDU (Gene Spafford)
Tue Jul 15 04:44:36 1997
Date: Mon, 14 Jul 1997 12:30:14 -0500
Reply-To: Gene Spafford <spaf@CS.PURDUE.EDU>
From: Gene Spafford <spaf@CS.PURDUE.EDU>
To: BUGTRAQ@NETSPACE.ORG
In-Reply-To: <199707141413.KAA22582@mgoblue.research.att.com>
At 9:13 AM -0500 7/14/97, Avi Rubin wrote in "Book on web security":
> In light of the recent discussion of CGI security, I want to mention that
> there is a chapter that addresses these issues in a new book that just
Right idea, wrong book. :-)
Web Security & Commerce
by Simson Garfinkel with Gene Spafford
O'Reilly & Associates, 1997
To quote the WWW page for the book: "Learn how to minimize the risks of
the Web with this comprehensive guide. It covers browser vulnerabilities,
privacy concerns, issues with Java, JavaScript, ActiveX, and plug-ins,
digital certificates, cryptography, web server security, blocking software,
censorship technology, and relevant civil and criminal issues."
A table of contents and pointers to reviews may be found at:
<http://www.ora.com/catalog/websec/> You can also follow the link to do an
on-line order.
--spaf
PS. I'm sure the book by Avi, Dan and Marcus is a great book, too -- so
buy both!
